1612 matches found
CVE-2013-3409
The portal in Cisco Prime Central for Hosted Collaboration Solution HCS places cleartext credentials in temporary files, which allows local users to obtain sensitive information by leveraging weak file permissions to read these files, aka Bug IDs CSCuh33735 and CSCuh34230...
Cisco Releases Security Advisory
Cisco has released a security advisory to address a vulnerability in the web framework of Cisco Prime Central for Hosted Collaboration Solution HCS Assurance. This vulnerability could allow an unauthenticated, remote attacker to access sensitive information on the system, including user...
CVE-2013-3473
CVE-2013-3473 affects Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance prior to 9.1.1. The issue is improper session handling: the web framework does not reliably determine an authenticated session, enabling unauthenticated remote attackers to enumerate usernames and password...
Cisco Prime Central for Hosted Collaboration Solution Assurance Unauthenticated Username and Password Enumeration Vulnerability
A vulnerability in the web framework of Cisco Prime Central for Hosted Collaboration Solution HCS Assurance could allow an unauthenticated, remote attacker to access sensitive information on the system. The vulnerability is due to improper user authentication and inadequate session management. An...
CVE-2013-3387
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service disk consumption via a flood of TCP packets to port 5400, leading to large error-log files, aka Bug ID CSCua42724...
CVE-2013-3390
Memory leak in Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service memory consumption via a flood of TCP packets, aka Bug ID CSCub59158...
Code injection
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service memory consumption via a flood of TCP packets to port 1 61615 or 2 61616, aka Bug ID CSCtz90114...
CVE-2013-3389
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service memory consumption via a flood of TCP packets to port 1 61615 or 2 61616, aka Bug ID CSCtz90114...
CVE-2013-3388
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service memory consumption via a flood of TCP packets to port 44444, aka Bug ID CSCtz92776...
CVE-2013-3387
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service disk consumption via a flood of TCP packets to port 5400, leading to large error-log files, aka Bug ID CSCua42724...
CVE-2013-3390
Memory leak in Cisco Prime Central for Hosted Collaboration Solution HCS Assurance 8.6 and 9.x before 9.21 allows remote attackers to cause a denial of service memory consumption via a flood of TCP packets, aka Bug ID CSCub59158...
Cisco Prime Central for Hosted Collaboration Solution Assurance Denial of Service Vulnerabilities
Cisco Prime Central for Hosted Collaboration Solution HCS Assurance contains multiple vulnerabilities that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition. Exploitation of these vulnerabilities could interrupt the monitoring of voice services and exhaust...
Karotz Smart Rabbit 12.07.19.00 - Multiple Vulnerabilities
Trustwave SpiderLabs Security Advisory TWSL2013-021: Multiple Vulnerabilities in Karotz Smart Rabbit Published: 08/01/13 Version: 1.0 Vendor: Electronic Arts http://www.ea.com/, formerly Mindscape, formerly Violet Product: Karotz Version affected: 12.07.19.00 Product description: Karotz is the...
Command injection
The web framework in Cisco Prime Central for Hosted Collaboration Solution HCS Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, which allows remote attackers to enumerate directories and files via a series of crafted requests, ak...
CVE-2013-3398
CVE-2013-3398 affects Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance. The web framework responds differently to requests for arbitrary pathnames, enabling unauthenticated remote attackers to enumerate directories and files. Root cause: insufficient security hardening of HTT...
Cisco Prime Central for Hosted Collaboration Solution Cross-Site Scripting Vulnerability
A vulnerability in the portal page of Cisco Prime Central for Hosted Collaboration Solution could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to a failure to properly...
CVE-2013-3375
Cross-site scripting XSS vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798...
Cross site scripting
Cross-site scripting XSS vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798...
CVE-2013-3375
Cisco Prime Central for Hosted Collaboration Solution contains an XSS vulnerability in its portal page (CVE-2013-3375). The issue arises from a failure to properly sanitize user-supplied input, allowing an unauthenticated, remote attacker to deliver a crafted link that injects arbitrary web scrip...
CVE-2013-3375
Cross-site scripting XSS vulnerability in the portal page in Cisco Prime Central for Hosted Collaboration Solution allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCue23798...